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(57) Abstract: An authentication apparatus for solving problems involving convenience and security is disclosed. The authenti- 
cation apparatus according to the present invention is an authentication apparatus having a plurality of authentication mechanisms, 
the apparatus determining (S23) whether authentication information that has been input by a card reader for inputting authentication 
information of an object of authentication is that of a user who is capable of changing over the plurality of authentication mecha- 
nisms, displaying (S24) a list of the plurality of authentication mechanisms if it is determined that the user is capable of making the 
changeover, and registering (S26) the authentication mechanism, which has been selected in the display list, as the efifective authen- 
tication mechanisnL 



wo 2004/068360 



- 1 - 



PCT/JP2004/000709 



DESCRIPTION 

AUTHENTICATION APPARATUS, METHOD AND PROGRAM 

TECHNICAL FIELD 
5 This Invention relates to a technique, which has 

a plurality of authentication mechanisms, for 
authenticating a user upon enabling one of these 
authentication mechanisms • 

10 BACKGROUND ART 

An apparatus of enheinced data security obtained 
by authenticating that a user is a prescribed user and 
so arranging it that the authenticated user can gain 
access is known in the art. Such an apparatus may 
15 have a plurality of authentication mechanisms for 
authenticating the user, not just a single 
authentication mechanism. These authentication 
mechanisms can be arranged hierarchically and, before 
a higher- order authentication mechanism is utilized, a 
20 lower-order authentication mechanism is employed to 
authenticate a user, or the plurality of 
authentication mechanisms can be arranged in parallel, 
any of the plurality of authentication mechanisms can 
be selected without authentication of the user, and 
25 user authentication is performed using the 

authentication mechanism that has been selected. 

However, such prior art involves problems in 
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terms of convenience and security. For example, with 
the hierarchical arrangement of the authentication 
mechanisms. It Is necessary to provide user 
authentication Information whenever the authentication 
5 mechanism of each layer Is started up. This Is a 

troublesome operation. With the parallel eorrangement 
of the authentication mechemlsms, the authentication 
mechanism Is changed over without authentication of 
the user. Though this facilitates operation, a 
10 problem which cirlses Is a commenstirate decline In 
reliability In terms of security. 

The present Invention has been devised In view of 
these examples of the prior art and. In order to solve 
the problems Involving convenience and security. Is so 
15 adapted as to prompt the provision of authentication 
information when an authentication-mechanism 
changeover function Is utilized. 

Further, an object of the present Invention Is to 
verify authentication by a new authentication 
20 mechanism, before an authentication mechanism is 

changed over, in order to avoid a situation in which 
an apparatus can no longer be used because a user does 
not happen to have suitable authentication Information 
after. an authentication mechanism is changed over. 

25 

DISCLOSURE OF INVENTION 
An authentication apparatus according to the 
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present invention has the following structure in order 
to attain the foregoing objedt: 

Specifically, the invention provides an 
authentication appeiratus having a plurality of 
5 authentication mechanisms, cheuracterized by 
comprising: 

input means for inputting authentication 
information of a user; 

determination means for determining whether the 
10 authentication information that has been input by the 
input means is that of a user who is capable of 
changing over the plurality of authentication 
mechanisms ; 

display control means for displaying a list of 
15 the plurality of authentication mechanisms if it has 
been determined by the determination means that the 
user is one capable of making the changeover; and 

registration means for registering, as an 
effective authentication mechanism, an authentication 
20 mechanism that has been selected from the list 
displayed by the display control means. 

Further, an authentication method according to 
the present invention has the following steps in order 
to attain the foregoing object: 
25 Specifically, the method is characterized by 

comprising: 

an input step of inputting authentication 
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Information of a user; 

a first authentication step of authenticating 
whether a user has access right to a first system 
using the authentication Information of the user that 
5 has been Input at the Input step, and allowing the 
user to access the first system If authentication 
succeeds ; 

a second authentication step of authenticating 
whether the user has access right to a second system 
10 using the authentication Information of the user that 
has been Input at the Input step,. and allowing the 
user to access the second system If authentication 
succeeds ; 

a control step of controlling whether the user 
15 will be managed under mcinagement of the first system 
or under management of the second system; and 

a verification step of verifying that 
authentication of the user In the second system has 
succeeded In the second authentication step; 
20 wherein If an Instruction that shifts the user 

from management under the first system to management 
under the second system has been recognized, the 
control step controls the first authentication step 
and the second authentication step. In order to shift 
25 the user from management under the first system to 

management under the second system, on the condition 
that the authentication of the user at the second 
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authentication step has been verified at the 
verification step. 

Other features and advantages of the present 
Invention will he apparent from the following 
5 descriptions taken In conjunction with the 

accompanying drawings. In which like reference 
characters designate the scune or similar parts 
throughout the figures thereof- 

10 BRIEF DESCRIPTION OF DRAWINGS 

Fig. 1 Is a block diagram for describing a 
hardware Implementation of a data processing apparatus 
according to an embodiment of the present Invention; 
Fig. 2 Is a functional block diagram for 
15 describing a functional Implementation of the data 

processing apparatus according to a first embodiment; 

Fig. 3 Is a functional block diagram. for 
describing a case where authentication of a user Is 
perfoicmed by a ceird In the data processing apparatus 
20 according to the first embodiment; 

Fig. 4 Is a flowchart for describing processing 
In a case where authentication of a user Is performed 
by a card In the data processing appeuratus according 
to the first embodiment; 
25 Fig. 5 Is a functional block diagram for 

describing a case where an authentication mechanism Is 
changed over by an administrator In the data 
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processing appsuratus according to the first 
embodiment ; 

Fig. 6 is a flowchart for describing processing 
in a case where an authentication mechanism is changed 
5 over by an administrator in the data processing 
apparatus according to the first embodiment; 

Fig. 7 is a block diagram for describing a 
hardware implementation of a data processing apparatus 
according to a second embodiment of the present 
10 invention; 

Fig.. 8 is a functional block diagram for 
describing a functional implementation of the data 
processing apparatus according to the second 
embodiment ; 

15 Fig. 9 is a functional block diagram for 

describing a case where user authentication is 
performed using a web browser of the user in the data 
processing apparatus according to the second 
embodiment ; 

20 Fig. 10 is a flowchart useful in describing 

processing for performing user authentication using a 
web browser of the user in the data processing 
apparatus according to the second embodiment; 
Fig. 11 is a functional block diagram for 

25 describing a case where an authentication mechanism i 
changed over using a web browser of an administrator 
in the data processing apparatus according to the 
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second embodiment:; 

Fig. 12 Is a flowchart useful In describing 
processing for performing changeover of an 
authentication mechanism using a web browser of an 
5 administrator In the data processing apparatus 
according to the second embodiment; 

Fig. 13 Is a functional block diagram for 
describing a functional Implementation of a data 
processing apparatus according to a third embodiment 
10 of the present invention; 

Fig. 14 is a functional block diagram for 
describing a case where user authentication is 
performed using a user interface in the data 
processing apparatus according to the third 
1 5 embodiment ; 

Fig. 15 is a flowchart useful in describing 
processing for performing user authentication using a 
user interface in the data processing apparatus 
according to the third embodiment; 
20 Fig. 16 is a functional block diagram for 

describing a case where an administrator changes over 
an authentication mechanism using a user interface in 
the data processing apparatus according to the third 
embodiment ; and 
25 Fig. 17 is a flowchart useful in describing 

processing through which an administrator changes over 
an authentication mechanism using a user interface in 
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tlie data processing apparatus according to the third 
embodiment . 

BEST MODE FOR CARRYING OUT THE INVENTION 
5 Preferred embodiments of the present Invention 

will now be described in detail with reference to the 
accompanying drawings. It should be noted that the 
embodiments will be described for a case where a data 
processing apparatus is equipped with a plurality of 
10 authentication mechanisms, with provision of 

authentication Information being performed by a card. 
However, the present invention is not limited to such 
an arraingement . 

[First Embodiment] 
15 Fig. 1 a block diagram Illustrating the structure 

of a data processing apparatus according to an 
embodiment of the present invention. 

In the Figure, reference numeral 100 denotes a 
CPU (central processing unit) for executing processing, 
20 described later, in accordance with a program that 
Implements a control method described in this 
embodiment. Reference numeral 101 denotes a program 
memory in which the control program executed by the 
CPU 100 has been stored. Numeral 102 denotes a RAM 
25 that furnishes a memory eirea (work area) for 

temporarily storing various data at execution of a 
control operation by the CPU 100. Nxameral 103 denotes 
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a display unit used to display messages and menus to 
the user as well as a list of authentication 
mechanisms in this embodiment. Numeral 104 denotes a 
card reader for reading a card presented by a user, 
5 whereby information that has been stored on the card 
is read. Numeral 105 denotes a control panel having 
an input unit such as a keyboard and pointing device 
euid used to select authentication mechanisms, 
described later. Numeral 110 denotes a system bus 
10 connecting these components and the CPU 100 and 

including a data bus and a control signal bus, etc. 

Besides the foregoing, the apparatus may be 
equipped with a large -capacity secondary storage 
device (a hard disk or MO) storing programs and image 
15 data, and a printer, etc., for printing out results of 
processing, etc. 

Fig. 2 is a functional block diagram illustrating 
the functional implementation of the data processing 
apparatus according to the first embodiment. In the 
20 first embodiment, these various functions are 

implemented by having the CPU 100 execute a program. 

In Fig. 2, reference numeral 201 denotes an 
authentication changeover unit for managing an 
administrator database 202, in which an 
25 administrator's name has been registered, and for 

storing a currently effective authentication mechanism. 
The administrator database 202 stores information such 
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as administrator names. Reference numeral 203 denotes 
an authentication mechanism start-up unit that is 
capable of selecting and starting up an authentication 
mechanism that has been indicated by the 

5 authentication changeover unit 201. Iteference 
numerals 204 and 205 denote two of a plurality of 
authentication mechanisms with which the apparatus has 
been equipped, these two mechanisms being represented 
by an authentication mechanism A that manages a first 

10 system cucid an authentication mechanism B that manages 

a second system, respectively. Reference numerals 206, 
207 denote authentication mechanism databases storing 
information such as user names, these databases being 
for authentication mechanism A (204) and 

15 authentication mechanism B (205), respectively. 
Reference numeral 208 denotes a user interface 
controller for controlling inputs from the control 
panel 105 and displays on the display unit 103 to 
thereby present messages and alerts to the user. When 

20 a card 209 is inserted into the card reader 104 by a 
user, the card reader 104 is capable of reading 
information such as the user name that has been 
recorded on the card. The card information that has 
been read is sent from the card reader 104 to the 

25 authentication mechanism (204 or 205) that has been 
started up at this time. As a result, the 
authentication function searches the corresponding 
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authentication mechanism database and determines 
whether the user of the card has been registered as 
the user of this authentication mechanism. If the 
user has been registered, then the user is 
5 authenticated. The card 209 is ceirried about by the 
user. Reference numeral 210 denotes an administrator 
and 211 a general user. Here a system includes 
sepeurately provided independent systems. However, a 
case where authentication mechanisms exist in one 
10 system in association with a plurality of 

authentication levels is conceivable. For example, a 
system corresponding to a user level that is a first 
authentication level shall be referred to as a first 
system, and a system corresponding to a second 
15 authentication level, which corresponds to an 

administrator level that is the second authentication 
level, shall be referred to as a second system. 

Fig. 3 is a diagram useful in describing 
exchanges between functional units in the data 
20 processing apparatus according to this embodiment. 

When this data processing apparatus is started up, 
first control is handed over to the authentication 
mechanism start-up unit 203. The authentication 
mechanism start-up unit 203 queries the authentication 
25 changeover unit 201 with regard to the effective 

authentication mechanism (300). If the authentication 
mechanism A (204) or authentication mechanism B (205) 
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Is specified by an eoiswer 301 to the q^iery, then the 
authentication mechanism start-up unit 203 starts up 
the authentication mechanism specified (302) • In Fig. 
3, a case where the authentication mechanism A (204) 
5 Is effective and will be started up Is assumed. The 
authentication mechanism A (204) thus started up 
requests (303) the user Interface controller 208 to 
display a card- Insertion command screen so as to 
Instruct the user to Insert the card In the card 

10 reader 104. Upon receiving the request, the user 
Interface controller 208 displays a screen, which 
prompts Insertion of the card, on the display unit 103 
In accordance with this request. It should be noted 
that the card whose Insertion Into the card reader 104 

15 Is requested Is assumed to be a card, which Is In the 
possession of the general user 211, for which 
changeover of the authentication mechanism Is not 
allowed . 

If the ccurd of user 211 Is thus Inserted (304) 
20 Into the card reader 104, a card-reader controller 220 
delivers (305) the authentication Information, which 
has been read from the card, to the authentication 
mechanism A (204). As a result, the authentication 
mechanism A (204) searches (306) the authentication 
25 mechanism database 206 of authentication mechanism A 
based upon this authentication Information emd checks 
to see whether the authentication Information of the 
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user has been registered in the database 206 of the 
authentication mechanism A (204). The result (307) of 
the search is obtained from the database 206. If the 
authentication information of the user 211 has been 
5 registered, then it is determined that the general 
user 211 has been authenticated. 

It should be noted that the authentication 
mechanism A (204) is capable of executing 
authentication that utilizes challenge and response. 
10 However, the mode of authentication is not the gist of 
the present invention and is not described in detail 
here. 

Fig. 4 is a flowchart for describing the flow of 
processing in the functional block diagram illustrated 

15 in Fig. 3. The program for executing this processing 
has been stored in the program memory 101 and is 
executed under the control of the CPU 100. 

When the data processing apparatus has been 
started up, first the authentication changeover unit 

20 201 is queried concerning the effective authentication 
mechanism at step SI. Control then proceeds to step 
S2, where the authentication mechanism specified as 
being effective [here the authentication mechanism A 
(204)] is started up. Next, control proceeds to step 

25 S3, where the card- inserting command screen that 

instructs the user to insert the card into the card 
reader 104 is displayed on the display unit 103. 
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Next, control proceeds to step S4, where the 
apparatus waits for Insertion of the user card into 
the card reader 104. If the card is inserted, control 
proceeds to step S5, at which the information on the 
5 inserted card is read. The read authentication 
information is delivered to the authentication 
mechanism A (204) at step S6. Control then proceeds 
to step S7, at which the authentication mechanism A 
(204) searches the database 206 of authentication 
10 mechanism A based upon the authentication information. 
It is determined at step S8 whether the authentication 
information of this user has been registered in the 
database 206 of authentication mechanism A (204). If 
the authentication information of user 211 has been 
15 registered in the database 206, it is judged that 

authentication has succeeded and control proceeds to 
step S9, where it is decided that the general user 211 
has been authenticated. On the other hand, if it is 
found at step S8 that the authentication information 
20 of this user has not been registered in the database 
206 of the authentication mechanism A (204), then it 
is judged that authentication has failed and control 
proceeds to step SIO, at which it is decided that 
authentication of this user could not be achieved. 
25 Here a case where the authentication mechanism A 

(204) has been selected has been described. However, 
it goes without saying that implementation is possible 
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In slmll€u: f aslxion also in a case where authentication 
mechanism B (205) has been selected. 

Next, reference will be had to the functional 
block diagram of Fig. 5 to describe a case where 
5 chcmgeover of the authentication mechanism has been 
specified by the user. 

Fig. 5 is a diagram for describing a case where a 
card for which changeover of the authentication 
mechanism is allowed is inserted by the user (an 
10 administrator) after the authentication mechanism has 
been started up in the data processing apparatus 
according to- this embodiment. A user who possesses 
such a card for which cheuigeover of the authentication 
mechanism is allowed shall be referred to as the 
15 administrator 210. This illustrates a mode in which 
the user has already been authenticated at the user 
level with the first authentication mechanism and the 
authentication mechanism is changed over, through use 
of a card, to the second authentication mechanism that 
20 is for mainaging the authentication level of 
administrator privilege . 

As another embodiment, the user may not need to 
have been authenticated by the first authentication 
mechanism. An mechanism for changing authentication 
25 mechanisms independent of the first authentication 

mechanism and second authentication mechanisms may be 
activated by the insertion of an administrator card. 
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Then, an authentication mechanism selection screen Is 
shown on display 103. By inputting a change over 
Instruction via the operation panel 105, the 
administrator can change over authentication 
5 mechanisms from the first authentication mechanism to 
the second authentication mechanism. 

If the administrator user 210 Inserts the card 
into the card reader 104 (500), the card-reader 
controller 220 reads the Information that has been 
10 recorded on the card. If it is determined that the 

card is one for which changeover of the authentication 
mechanism has been allowed, then the authentication 
information that has been recorded on the card is 
delivered to the authentication changeover unit 201. 
15 The authentication changeover unit 201 searches (502) 
the administrator database 202 based upon the 
authentication information delivered. If the 
information recorded on the card has been registered 
in the administrator database 202, this means that 
20 authentication will succeed. If the fact that 

authentication has succeeded is determined based upon 
the result of the search (503), then the 
authentication changeover unit 202 requests (504) the 
user interface controller 208 to display a screen 
25 prompting the selection of the authentication 

mechanism. Upon being delivered this request, the 
user interface controller 208 displays on the display 
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unit 103 a list of authentication mechanisms with 
which the data processing apparatus is equipped. If 
on the basis of the displayed list the administrator 
user 210 selects a desired authentication mechanism 
5 (505), then the name of the selected authentication 
mechanism is sent from the user interface controller 
208 to the authentication changeover unit 201 and is 
stored as the effective authentication mechanism. The 
information thus stored is referred to by the 
10 authentication mechanism start-up unit 203 the next 

time the data processing apparatus is started up, and 
the authentication mechanism is started up based upon 
this information. 

Fig. 6 is a flowchart for describing the flow of 
15 processing in the functional block diagram illustrated 
in Fig. 5. The program for executing this processing 
has been stored in the program memory 101 and is 
executed under the control of the CPU 100. 

First, whether a card has been inserted into the 
20 card reader 104 is checked at step S21. If the card 
has been inserted into the ceird reader 104, control 
proceeds to step S22, at which it is determined 
whether the administrator user 210 has inserted the 
card for the administrator into the card reader 104, 
25 i.e., whether a card for which changeover of 

authentication mechanism is allowed has been inserted. 
If the card has been inserted, then control proceeds 
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to Step S23, where authentication Information that has 
been recorded on the card Is delivered to the 
authentication changeover unit 201 and it is 
determined whether the administrator is one who has 

5 been recorded in the administrator database 202. In a 
case where the information that has been recorded on 
the card has been registered in the administrator 
database 202, control proceeds to step S24 on the 
grounds that authentication has succeeded. Here a 

10 list of authentication mechanisms that prompts 

selection of the authentication mechanism is displayed 
on the display unit 103. Next, control proceeds to 
step S25. If the administrator user 210 selects a 
desired authentication mechanism using the control 

15 panel 105 on the basis of the displayed list, the name 
of the selected authentication mechanism is stored as 
the effective authentication mecheuiism. The 
Information thus selected is referred to by the 
authentication mechanism start-up unit 203 the next 

20 time the data processing apparatus is started up, and 
this authentication mechanism is started up. In the 
meantime, the user continues to be in the 
authenticated state in the first authentication 
mechanism of the user level. Accordingly, in response 

25 to success of authentication euid storing of the name 
of the second authentication mechanism as the 
effective authentication mechauiism, the user for whom 
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authentication succeeded is freed from management 
under the first authentication mechanism. This is an 
ideal situation. The reason for this is as follows: 
If a user were to be Immediately freed from management 
5 from the first authentication mechanism in response to 
a changeover instruction, then, in the event that 
there were no other users available in case of 
authentication f ailtire in the second authentication 
mechanism, the authentication mechanism or overall 
10 system would not be restartable or system recovery 
would not be possible, as set forth earlier. 

If the program judges at step S22 that the card 
for the administrator has not been Inserted, or if it 
is found at step S23 that the person possessing the 
15 card has not been registered as an administrator, this 
means that the card that has been inserted by the 
administrator user 210 is not a card for which a 
changeover of authentication mechanism is allowed and, 
hence, processing is exited as is with no further 
20 processing. in the meantime, the user continues to be 
in the authenticated state in the user-level 
authentication mechanism and therefore the system 
which the user- level authentication mechanism manages 
can be restored. In certain cases, a display to the 
25 effect that "AUTHENTICATION CHANGEOVER HAS FAILED" may 
be presented on the control panel 105 by the system 
operating under the authentication mechanism 



wo 2004/068360 PCT/JP2004/000709 

- ZU - 



prevailing prior to the changeover. Here the system 
under the management of the first authentication 
mechanism shall be referred to as the first system and 
the system under the management of the second 
5 authentication mechanism after the changeover shall be 
referred to as the second system. 

As another embodiment, the user may not need to 
have been authenticated by the first authentication 
mechanism. An mechanism for changing authentication 
10 mechanisms independent of the first authentication 

mechanism and second authentication mechanisms may be 
activated by the insertion of an administrator card. 
Then, an authentication mechanism selection screen is 
shown on display 103. By inputting a change over 
15 instruction via the operation panel 105, the 
administrator can change over authentication 
mechanisms from the first authentication mechanism to 
the second authentication mechanism. Thus, there have 
been described the card reader 104 and control panel 
20 serving as ideal examples of input means for inputting 
user authentication information such as a set 
consisting of a user name stored on a card and a 
password or an electronic certificate of proof; a 
first authentication mechanism for authenticating 
25 whether a user has access right to a first system, 

which prevails prior to an authentication changeover, 
using the user authentication information entered into 
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the card reader; a second autlienticatlGn mechanism for 
authenticating whether the user has access right to a 
second system, which prevails after an authentication 
changeover, using the user authentication Information 
5 entered into the card reader, and allowing the user to 
access the second system if authentication has 
succeeded; a control program, which has been stored in 
the program memory 101, for controlling whether the 
user is managed under the management of the first 
10 system or under the management of the second system; 
and a verification program for verifying that 
authentication of the user in the second system has 
succeeded in the second authentication mechanism. 
Further, in a case where an instruction that shifts 
15 the user from management under the first system to 

management under the second system has been recognized, 
the control program controls the first authentication 
mechanism and the second authentication mechanism, in 
order to shift the user from management under the 
20 first system to management under the second system, on 
the condition that the authentication of the user by 
the second authentication mechanism has been verified 
by the verification program. 

In accordance with the first embodiment, as 
25 described above, there is provided an apparatus 

equipped with a pl\arality of authentication mechanisms, 
in which an authentication mechanism that has been 



wo 2004/068360 



PCT/JP2004/000709 



registered as being effective can be steirted up and a 
user is capable of being authenticated by the 
authentication mechanism that has been started up. 
Further, a desired authentication mechanism can be 
5 selected from among the plurality of authentication 
mechanisms and can be used to authenticate the user. 
[Second Embodiment] 

In a second embodiment, a case where 
authentication of a user is performed by both a web 
10 page and the control panel 105 in a data processing 

apparatus equipped with a plurality of authentication 
mechanisms will be described. 

Fig. 7 is a block diagram illustrating the 
hardware implementation of a data processing apparatus 
15 according to a second embodiment of the present 

invention. Components similar to those of the first 
.embodiment are designated by like symbols and a 
description thereof is omitted. 

The data processing appeuratus according to the 
20 second embodiment is provided with a network board 70 
for performing communication via a communication line 
71. 

Fig. 8 is a functional block diagram illustrating 
the functional implementation of the data processing 
25 apparatus according to the second embodiment. 

Components similar to those of the first embodiment 
are designated by like symbols. Furthermore, as in 
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the first embodiment, these various functions are 
implemented by having the CPU 100 execute a program in 
the second embodiment as well. 

Reference numeral 202 denotes the administrator 
5 database in which information such as the name of the 
administrator has been stored. The authentication 
changeover unit 201 stores the currently effective 
authentication mechanism and is capable of changing 
over to this effective authentication mechanism. The 
10 authentication mechanism start-up unit 203 has a 

mechanism for deciding the authentication mechanism to 
be started up. Reference numerals 204 and 205 denote 
two of a plurality of authentication mechemisms with 
which the apparatus has been equipped, these two 
15 mechanisms being represented by authentication 
mechanism A and authentication mechanism B, 
respectively. Reference numerals 206, 207 denote 
authentication mechanism databases storing information 
such as user names, these databases being for 
20 authentication mechanism A (204) and authentication 
. mechanism B (205), respectively. Reference numeral 
703 denotes a liquid crystal panel controller for 
controlling the control panel 105 and the display unit 
103. Reference numeral 700 denotes an authentication 
25 mechanism changeover web page presenting unit that 

constructs a web page, which is for changing over the 
authentication mechanism, auid provides an 
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administrator web browser 701, which is operated by 
the administrator 210, with display data via a network. 
The authentication mechanism changeover web page 
presenting unit 700 also provides a web page for 
5 authenticating the administrator 210. Reference 

niimeral 702 denotes an authentication mechanism web 
page presenting unit shared by a plurality of 
authentication mechanisms. This unit provides a web 
page for authenticating a user to a browser 704, which 
10 is operated by the user 211, via the network. The 

administrator web browser 701 and the web browser 704 
of the general user eore web browsers that operate on 
the computers manipulated by the users; it goes 
without saying that they are not included in this data 
15 processing appeoratus. 

Fig. 9 is a diagram useful in describing 
exchanges between the software components (Fig. 8) 
when the data processing apparatus according to the 
second embodiment is started up. 
20 First, when the data processing apparatus is 

started up, control is handed over to the 
authentication mechanism start-up xanit 203. The 
authentication mechanism start-up unit 203 starts up 
the authentication mechanism changeover web page 
25 presenting unit 700 unconditionally (801). The 

authentication mechanism start-up unit 203 queries the 
authentication changeover unit 201 with regard to the 
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effective authentication mechanism (802). The 
authentication mechanism A (204) or the authentication 
mechanism B (205) is started up depending upon the 
result (803). In Fig. 8, the authentication mechanism 

5 A (204) is effective and therefore a case where the 
authentication mechanism A (204) is started up is 
illustrated. The authentication mechanism A (204) 
thus started up requests (805) the authentication 
mechanism web page presenting unit 702 to display an 

10 authentication screen. Upon receiving the request, 

the authentication mechanism web page presenting unit 
702 displays a screen, which prompts input of 
authentication information such as the user name, on 
the display unit 103. If in response authentication 

15 information is entered (806, 807) by the user via the 
web browser 704 of the general user, the 
authentication mechanism web page presenting unit 702 
delivers the entered authentication information (808) 
to the authentication mechanism A (204). As a result, 

20 the authentication mechanism A (204) searches (809) 
the authentication mecheinism database 206 of 
authentication mechanism A based upon this entered 
authentication information. In accordance with the 
result (810) of the search, it is determined whether 

25 the user 211 is to be authenticated and this is 

reported (811) to the authentication mechanism web 
page presenting unit 702. It should be noted that the 
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authentication mechanism A (204) and authentication 
mechanism web page presenting unit 702 are capable of 
executing authentication that utilizes challenge and 
response. However, the mode of authentication is not 
5 the gist of the present invention and is not described 

in detail here. 

Fig. 10 is a flowchart for describing the flow of 
processing in the functional block diagram illustrated 
in Fig. 9. The program for executing this processing 
10 has been stored in the program memory 101 of Fig. 7 
and is executed under the control of the CPU 100. 

This processing is started by starting up the 
data processing apparatus. At step S31, the 
authentication mechanism changeover web page 
15 presenting unit 700 is started up unconditionally and 
a web page for changing over the authentication 
mechanism is displayed. Next, control proceeds to 
step S32, at which the authentication changeover unit 
201 is queried concerning the effective authentication 
20 mechanism. The authentication mechanism A (204) or 

authentication mechanism B (205) is started up at step 
S33. The authentication mechanism thus started up 
displays a screen, which is for prompting entJTr o± 
authentication information such as user name, on the 
25 display unit 103. Next, control proceeds to step S35, 
where the apparatus waits for the user to enter 
authentication information via the web browser 704 of 
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the general user. If the authentication information 
is entered, then the entered authentication 
Information Is delivered to the effective 
authentication mechanism. As a result, this 
5 authentication mechanism searches the database of this 
authentication mechemism based upon the entered • 
authentication information (step S36). If the result 
of the search is that the user name, etc., has been 
registered in this authentication mechanism database, 
10 control proceeds to step S38 and it is decided that 

this user has been authenticated. On the other hand, 
if it is found at step S37 that the user name has not 
been registered, then control proceeds to step S39, 
where it is decided that the user is not authenticated. 
15 This result is reported to and displayed on the 

authentication mechanism web page presenting unit 702. 

Fig. 11 is a diagram for describing a case where 
the administrator user changes over the authentication 
mechanism after the data processing apparatus of the 
20 second embodiment has been started up. The user 
having this privilege shall be referred to as the 
administrator . 

First, the administrator user 210 accesses (902) 
the authentication mechanism changeover web page 
25 presenting unit 700 using the administrator web 

browser 701 (901). As a result, an authentication 
screen is displayed on the administrator web browser 
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701. Accordingly, the administrator user 210 enters 
authentication information such as a name (904, 905). 
The authentication information thus entered is 
delivered (910) from the authentication mechanism 

5 changeover web page presenting unit 700 to the 

authentication changeover unit 201. On the basis of 
the authentication information delivered, the 
authentication mecheuiism changeover web page 
presenting unit 700 searches (906) the administrator 

10 database 202. If the entered authentication 

information has been registered in the administrator 
database 202 according to the response (907), then 
authentication of the administrator will succeed. If 
authentication thus succeeds, a web page bearing a 

15 list of the authentication mechanisms with which this 
data processing apparatus is equipped is presented 
(903) on the administrator web browser 701. If in 
response the administrator user 210 refers to this 
list and selects (908) a desired authentication 

20 mechanism, then the name of the authentication 

mechanism that has been selected is delivered to the 
authentication mechanism changeover web page 
presenting unit 700 and authentication changeover unit 
201 (909, 910) and is stored as the effective 

25 authentication mechanism. The information thus stored 
is referred to by the authentication mecheoiism start- 
up unit 203 the next time the data processing 
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appaxatus xs started up, and the authentication 
mechanism stored as the effective mechanism Is started 
up. 

Fig. 12 Is a flowchart for describing the flow of 
5 processing according to the second embodiment In the 
diagram Illustrated In Fig. 11. The program for 
executing this processing has been stored In the 
program memory 101 and Is executed under the control 
of the CPU .100. 

10 First, at step S41, the administrator user 210 

accesses the authentication mechanism changeover web 
page presenting unit 700 using the administrator web 
browser 701 and displays an authentication screen on 
the administrator web browser 701. Next, if 

15 authentication information such as a name is entered 
by the administrator user 210 at step S42, control 
proceeds to step S43, where a search is conducted by 
the authentication mechanism changeover web page 
presenting unit 700 to determine whether the entered 

20 authentication information has been registered in the 
administrator database 202. If the authentication 
information has been registered, control proceeds to 
step S44, where a web page bearing a list of 
authentication mechanisms with which this data 

25 processing apparatus is equipped is presented on the 

administrator web browser 701. As a result, this list 
is displayed on the display unit 103. Control then 
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proceeds to step S45. If the administrator 210 refers 
to this 'list and selects a desired authentication 
mechanism, control proceeds to step S46, at which the 
•name of the selected authentication mechanism is 
5 delivered to the authentication mecheuiism changeover 
web page presenting unit 700 and host computer 200 
(909, 910) and registered as the effective 
authentication mechanism. The information thus stored 
is referred to by the authentication mechanism stcirt- 
10 up unit 203 the next time the data processing 

apparatus is stcucted up, and the authentication 
mechanism stored as the effective mechanism is started 
up. 

On the other hand, when it is found at step S43 
15 that the entered authentication information has not 

been registered as the administrator, control proceeds 
to step S47, where a display to the effect that the 
authentication information of this administrator has 
not been registered is presented on the display unit 
20 103. It should be noted that the processing of step 
S47 may just as well be executed in a case where a 
"NO" decision is rendered at step S22 or step S23 in 
Fig. 6. 

Thus, in accordance with the second embodiment, 
25 as described above, there is provided an apparatus 

equipped with a plurality of authentication mechanisms, 
in which an authentication mechanism that has been 
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registered as being effective cein be started up, the 
web page of the authentication mechanism that has been 
started up can be accessed by the web browser of a 
user and the user can be authenticated. 
5 Further, a web page for changing over 

authentication can be accessed by a web browser, a 
desired authentication mechanism can be selected from 
among a plurality of authentication mechanisms and 
this authentication mechanism can be used to 
10 authenticate a user. 

[Third Embodiment] 

A data processing apparatus according to a third 
embodiment of the present Invention will be described 
next . 

15 Fig. 13 Is a functional block diagram 

Illustrating the functional Implementation of the data 
processing appeLcatus according to the third embodiment. 
Components similar to those of the above- described 
emboddLments are designated by like symbols or numerals. 

20 Furthermore, the heardware Implementation of the data 

processing apparatus according to the third embodiment 
Is similar to that of the first embodiment and 
therefore a description thereof Is omitted. The third 
embodiment Is characterized In that authentication of 

25 a user Is performed by an Input from the control panel 
105 controlled by the user Interface controller 208. 

The authentication changeover unit 201 stores the 
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currently effective authentication mechanism. The 
authentication mechanism start-up unit 203 starts up 
the effective authentication mechanism based upon 
Information Indicative of the effective authentication 
5 mechanism from the authentication changeover unit 201. 
Reference numerals 204 and 205 denote two of a 
plurality of authentication mechanisms with which the 
data processing apparatus has been equipped, these two 
mecheuilsms being represented by authentication 

10 mechanism A and authentication mechanism B, 

respectively. Reference numerals 206, 207 denote 
authentication mechanism databases storing Infoinnatlon 
such as user names on a per- authentication mechanism 
basis, these databases being for authentication 

15 mechanism A (204) and authentication mechanism B (205) , 
respectively. Reference numeral 208 denotes a user 
Interface controller, which Is shared by a plurality 
of authentication mechanisms, for controlling the 
control panel 105 and display unit 103 of the data 

20 processing apparatus. 

Fig. 14 Is a diagram useful In describing 
exchanges between the software components (Fig. 13) In 
the data processing apparatus according to the third 
embodiment . 

25 First, when the data processing apparatus Is 

started up, control Is handed over to the 
authentication mechanism start-up unit 203, whereupon 
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the authentication mechanism start-up unit 203 queries 
the authentication changeover unit 201 with regard to 
the effective authentication mechanism (1300). The 
authentication mechanism A (204) or the authentication 
5 mechanism B (205) is started up depending upon the 
result (1301). In Fig. 14, a case where the 
authentication mechanism A (204) is started up as the 
effective authentication mechanism is illustrated. 
The authentication mechanism A (204) thus started up 
10 requests (1304) the user interface controller 208 to 
display an authentication screen. Upon receiving the 
request, the user interface controller 208 displays a 
screen, which prompts input of authentication 
information such as the user name, on the display unit 
15 103. If authentication information is entered (1305) 
by the user 211 using the control panel 105 on the 
basis of this display, the user interface controller 
208 delivers the authentication information (1306), 
which has been entered from the control panel 105, to 
20 the authentication mechanism A (204). As a result, 
the authentication mechanism A (204) searches (1307) 
the authentication mechanism database 206 of 
authentication mechanism A based upon this entered 
authentication information to determine whether the 
25 authentication information of user 211 has been 

registered. In accordance with the result (1308) of 
the search, it is determined whether the user 211 is 
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to be authenticated and this is reported (1309) to the 
user interface controller 208. 

Fig. 15 is a flowchcurt for describing the flow of 
processing in the diagram according to the third 
5 embodiment illustrated in Fig. 14. The program for 
executing this processing has been stored in the 
program memory 101 of Fig. 7 and is executed under the 
control of the CPU 100. 

This processing is started by stsucting up the 
10 data processing apparatus. First, at step S51, the 
effective authentication mechanism is determined and 
authentication mechanism A (204) or authentication 
mechanism B (205) is started up as the effective 
mechanism. When the authentication mechanism is thus 
15 started up, control proceeds to step S52, where an 

authentication screen is displayed on the display unit 
103 by the user interface controller 208. Next, at 
step S53, the apparatus waits for the user 211 to 
enter authentication information using the control 
20 panel 105 on the basis of this display. If the 

authentication information is entered, then control 
proceeds to step S54 and the entered authentication 
information is delivered to this authentication 
mechanism. As a result, at step S55, this 
25 authentication mechanism searches the database of this 
authentication mechanism based upon the entered 
authentication information to determine whether the 
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entered authentication information of user 211 has 
been registered. When the authentication information 
has been registered, control proceeds to step S56, 
where it is decided that user 211 has been 
5 authenticated. When the authentication information 
has not been registered, on the other hand, control 
proceeds to step S57, where it is judged that the user 
could not be authenticated. 

Fig. 16 is a diagram illustrating exchanges 
10 between the software components in a case where a user 
(the administrator) changes over the authentication 
mechanism after the authentication mechanism has been 
started up in the third embodiment. A user having 
this privilege shall be referred to as the 
15 administrator. 

Exchanges after the administrator user 210 has 
been authenticated as the administrator through the 
foregoing procedure will be described. After the 
administrator user 210 has been authenticated as the 
20 administrator, the administrator user 210 causes an 
authentication-mechanism selection screen to be 
displayed on the display unit 103 through a suitable 
method by means of the control panel 105 using the 
user interface controller 208. The mounting of such a 
25 function is obvious if a menu system or the like is 
used and therefore need not be described. The 
authentication-mechanism selection screen is thus 
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displayed. A list of authentication mechanisms with 
which this data processing apparatus Is equipped Is 
displayed on the selection screen. On the basis of 
the list displayed, the administrator 210 selects 
5 (1500) a desired authentication mechanism from the 
control panel 105 and the user Interface controller 
208 displays a screen that prompts the administrator 
210 to enter authentication Information such as the 
user name. If authentication Information Is entered 
10 (1501) from the control panel 105 by the administrator, 
the user Interface controller 208 requests (1502) the 
selected authentication mechanism to verify the 
authentication Information. Assume here that the 
authentication mechanism B (205) has been selected. 
15 On the basis of the authentication Information 
accepted, the authentication mechanism B (205) 
searches the database 207 of authentication mechanism 
B (1503). As a result, the database 207 of 
authentication mechanism B sends the result (1504) of 
20 the search back to the authentication mechanism B 
(205). If the result Indicates success of 
authentication, then the name of the selected 
authentication mechanism is sent to the authentication 
changeover unit 201 (1505, 1506) and is stored as the 
25 effective authentication mechanism. The Information 
thus stored is referred to by the authentication 
mechanism start-up unit 203 the next time the data 
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processing appeuratus is started up. 

Fig. 17 is a diagram useful in describing a case 
where an administrator user changes over the 
authentication mechanism after the data processing 
5 apparatus according to the third embodiment has been 
changed over. A user having such privilege shall be 
referred to as the administrator. 

This processing is started in response to a 
command designating changeover of the authentication 
10 mechanism. First, if the administrator user 210 

enters authentication information at step S61, it is 
determined in a manner similar to the foregoing 
whether this user has been registered as the 
administrator (step S62), this determination being 
15 made in dependence upon whether the authentication 
information has been registered. When the user has 
not been registered as an administrator, control 
proceeds to step S69. Since the user is not a 
registered administrator, here a display to the effect 
20 that the authentication mechanism cannot be changed 
over is displayed and this processing is exited. 

If it is found at step S62 that the administrator 
user 210 is authenticated as the administrator, 
control proceeds to step S63. where the administrator 
25 user 210 displays the authentication-mechanism 

selection screen by a suitable method using the user 
interface controller 208. As a result, a list of the 
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authentication medianisms with which this data 
processing apparatus is equipped is displayed- Next, 
control proceeds to step S64. If on the basis of the 
displayed list the administrator 210 selects a desired 
5 authentication mechanism using the control panel 105, 
control proceeds to step S65, where the selected 
authentication mechcuiism is selected. Next, control 
proceeds to step S66, at which a screen that prompts 
the administrator user 210 to enter authentication 
10 information such as a name is displayed. If the 
administrator user 210 enters the authentication 
information by the control panel 105, control proceeds 
to step S67, where the selected authentication 
mechanism is requested to verify the authentication 
15 information. Accordingly, this authentication 

mechanism searches the database of the authentication 
mechanism based upon the accepted authentication 
information and determines whether the authentication 
information of this administrator has been registered 
20 in this database. If it is determined as a result 
that the authentication information has been 
registered, control proceeds to step S68. Here the 
name of the selected authentication mechanism is sent 
to the authentication changeover unit 201 and is 
25 registered as the effective authentication mechanism. 
The information thus stored is referred to by the 
authentication mechanism start-up unit 203 when the 



wo 2004/068360 



- 3y - 



PCT/JP2004/000709 



data processing apparatus is started up next. 

In accordance with the third embodiment, as 
described above, there is provided an apparatus 
equipped with a plurality of authentication mechanisms, 
5 in. which an authentication mechanism that has been 

registered as being effective can be started up and a 
user can be authenticated by this authentication 
mechanism based upon authentication information of a 
user that has been entered using a control panel. 
10 Further, an administrator can select a desired 

authentication mechanism from among a plurality of 
authentication mechanisms using a control panel and 
this authentication mechanism can be used to 
authenticate a user. 
15 It should be noted that a multifunction copier 

having functions such as facsimile and printer 
functions in addition to a copier function can be 
mentioned as a specific example of the data processing 
apparatus described above. The copier can be used to 
20 perform copying or facsimile transmission only in a 

case where a general user has been authenticated using 
the authentication mechanism that has been selected at 
the time (the mechanism essentially being constituted 
by software although specific hardware such as a card 
25 reader is used depending upon the particular case). A 
user that is incapable of being authenticated cannot 
use the copier, as a matter of course. 



wo 2004/068360 PCT/JP2004/000709 

- 4U - 

Further, a user wtxo has been registered as an 
administrator can change over the authentication 
mechanism as necessary. If the authentication 
mechanism is thus changed over, it becomes possible to 
5 perform user authentication using, e.g.^ a web page, 
and the information that each user enters for the 
purpose of authentication also will change. This 
meems that users capable of using this copier will 
change even among general users. Further, owing to 
10 such a changeover in authentication mechanism, a user 
who has been granted the right to change the basic 
settings of this multifunction copier can be 
distinguished from other users. 

Further, according to the present invention, it 
15 is so arranged that authentication is performed using 
the name of a user, and what is to be recognized is 
the user per se. However, in a case where the 
computer of a user and a copier with a printer 
function have been connected on a network, 
20 authentication may just as well be performed by using 
the ID of the computer machine instead of user name 
(in which the object of authentication would be the 
computer). Further, it may be so arranged that 
authentication is performed based upon the type of 
25 document to be printed or transmitted by facsimile. 

In such case the object of authentication would be the 
document (the print job or the job to be transmitted). 
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[Other Embodiments] 

The present invention may be applied to a system 
constituted by a plurality of devices (e.g., a host 
computer, interface, reader, printer, etc.) or to an 
5 apparatus comprising a single device (e.g., a copier 
or facsimile machine, etc.). For example, the present 
invention is also applicable to a single -function 
apparatus having only one function from among a 
plurality of functions such as a scanning function, 
10 printing function, copying function, facsimile 

function, printer function and network function. In 
addition, the present invention is also applicable to 
a multiftinction apparatus having at least two of the 
above-mentioned plurality of functions, such as a 
15 digital multifunction machine having two functions, 
e.g., the copying function and the printer function, 
and a digital multifunction machine having three or 
more functions, e.g., the copying, facsimile and 
printer functions. 
20 Furthermore, it goes without saying that the 

object of the invention is attained also by supplying 
a storage medium storing the program codes of the 
software for implementing the functions of the 
foregoing embodiments to a system or an apparatus, 
25 reading the program codes with a computer (e.g., a CPU 
or MPU) of the system or apparatus from the storage 
medium, smd then executing the program codes. 
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In this case, the program codes read from the 
storage medium implement the novel functions of the 
embodiments and the storage medium storing the program 
codes constitutes the invention. 
5 Examples of storage media that can be used for 

supplying the program code are a floppy disk, hard 
disk, optical disk, magneto -optical disk, CD-ROM, CD-R, 
magnetic tape, non-volatile type memory card or ROM, 
etc. Furtheimore, besides the case where the 
10 aforesaid functions according to the embodiments are 
implemented by executing the program codes read by a 
computer, it goes without saying that the present 
invention covers a case where an OS (operating system) 
or the like running on the computer performs a part of 
15 or the entire process in accordance with the 

designation of program codes and Implements the 
functions according to the embodiment. 

It goes without saying that the present invention 
further covers a case where, after the program codes 
20 read from the storage medium are written in a function 
expansion board inserted into the computer or in a 
memory provided in a function expansion unit connected 
to the computer, a CPU or the like contained in the 
function expansion board or function expansion unit 
25 performs a part of or the entire process in accordance 
with the designation of program codes and implements 
the function of the above embodiments. 
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Thus, in accordance with these embodiments, as 
described above, there is provided an apparatus having 
a plurality of authentication mechanisms, in which 
authentication of a user who attempts to change over 
5 the authentication mechanism can be performed at the 
time of cheingeover of the authentication mechanism. 
Further, authentication of a user who has specified 
changeover is performed even in a case where 
authentication mechanisms arranged in parallel are 
10 changed over. This makes it possible to prevent 

circumstances in which an apparatus can no longer be 
utilized because a database of authentication 
information cheuiges after an authentication mechanism 
is changed over. 
15 [Effects of the Invention] 

In accordance with the present invention, as 
described above, problems of convenience and security 
can be solved. 

Further, in accordance with the present invention, 
20 authentication can be verified by a new authentication 
mechanism, before an authentication mechanism is 
changed over, in order to avoid a situation in which 
an apparatus can no longer be used because a user does 
not happen to have suitable authentication information 
25 after an authentication mechanism is changed over. 

As many apparently widely different embodiments 
of the present invention can be made without departing 
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from the spirit and scope thereof, it is to be 
understood that the invention is not limited to the 
specific embodiments thereof except as defined in the 
claims . 



wo 2004/068360 PCT/JP2004/000709 



CLAIMS 



1. An authentication apparatus having a plurality of 
authentication mechanisms, characterized by 
5 comprising: 

input means for inputting authentication 
Information of an object of authentication; 

deteimlnatlon means for determining whether the 
authentication information that has been input by said 
10 input means is that of an object of authentication 
that is capable of changing over the plurality of 
authentication mechanisms ; 

display control means for displaying a list of 
the plurality of authentication mechanisms if it has 
15 been determined by said determination means that the 
object of authentication is one capable of making the 
changeover; and 

registration means for registering, as an 
effective authentication mechanism, an authentication 
20 mechanism that has been selected from the list 
displayed by said display control means. 
2. An authentication apparatus having a plurality of 
authentication mechanisms, characterized by 
comprising: 

25 input means for inputting authentication 

information of an object of authentication; 

determination means for determining whether the 
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authentication Information that has been input by said 
input means is that of an object of authentication 
that is capable of changing over the plurality of 
authentication mechanisms ; 
5 display control means for displaying a list of 

the plurality of authentication mechcuiisms if it has 
been determined by said determination means that the 
object of authentication is one capable of making the 
chsingeover ; 

10 selection means for selecting an authentication 

mechanism in the list displayed by said display 
control means; and 

registration means for registering the 
authentication mechanism, which has been selected by 

15 said selection means, as an effective authentication 

mechanism in a case where the authentication mechanism 
that has been selected by said selection means has 
registered authentication information input by. said 
input means. 

20 3. An authentication apparatus according to claim 1, 
chcoracterized in that said input means reads a card on 
which authentication information of an object of 
authentication has been recorded and inputs said 
authentication information. 

25 4. An authentication apparatus according to claim 1, 
characterized in that said input means inputs the 
authentication information by a web browser. 
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5. An authentication apparatus according to any one 
of claims 1 to 4, chsiracterlzed In that each of said 
plurality of authentication mechanisms has: 

storage means that has registered authentication 
5 Information of an object of authentication; and 

authentication determination means which, in a 
case where entered authentication information of a 
user has been registered in said storage means, is for 
authenticating this object of authentication. 

10 6. An authentication apparatus according to any one 
of claim 5, characterized by further having start-up 
means for starting up an authentication mechanism that 
has been registered as an effective authentication 
mechanism by said registration means. 

15 7. An authentication method of changing over a 

plurality of authentication . mechanisms and perfoirming 
authentication, characterized by comprising: 

an input step of inputting authentication 
information of ein object of authentication; 

20 a determination step of determining whether the 

authentication information that has been input at said 
input step is that of an object of authentication that 
is capable of changing over the plurality of 
authentication mecheuiisms ; 

25 a display control step of displaying a list of 

the plurality of authentication mechanisms if it has 
been determined at said determination step that the 
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Object of authentication Is one capable of making the 
changeover ; and 

a registration step of registering, as an 
effective authentication mechanism, an authentication 
5 mechanism that has been selected from the list 
displayed at said display control step. 
8. An authentication method of changing over a 
plurality of authentication mechanisms and performing 
authentication, characterized by comprising: 
10 an Input step of Inputting authentication 

Information of an object of authentication; 

a determination step of determining whether the 
authentication .Information . that has been Input at said 
Input step Is that of an object of authentication that 
15 Is capable of chcuiglng over the plurality of 
authentication mechanisms ; 

a display control step of displaying a list of 
the plurality of authentication mechanisms If It has 
been determined at said determination step that the 
20 object of authentication Is one capable of meiklng the 
changeover ; 

a selection step of selecting an authentication 
mechcuilsm In the list displayed at said display 
control step; and 
25 a registration step of registering the 

authentication mechanism, which has been selected at 
said selection step, as an effective authentication 
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mechanism In a case where the authentication mechanism 
that has been selected at said selection step has 
registered authentication information input at said 
input step. 

5 9. An authentication method according to claim 7, 
characterized in that a card on which authentication 
information of an object of authentication has been 
recorded is read and said authentication information 
is input at said input step. 
10 10. An authentication method according to claim 7, 
characterized in that the authentication information 
input by a web browser at said input step. 

11. An authentication method according to any one of 
claims 7 to 10, characterized in that each of said 

15 plurality of authentication mechanisms has a storage 
unit that registers authentication information of an 
object of authentication, and said method further has 
an authentication determination step which, in a case 
where entered authentication information of an object 

20 of authentication has been registered in said storage 
unit, is a step of authenticating this object of 
authentication . 

12. An authentication method according to any one of 
claims 7 to 10, characterized by further having a 

25 start-up step of starting up an authentication 

mechanism that has been registered as an effective 
authentication mechanism at said registration step. 
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13. An authentication method chaxacterlzed by 
comprising: 

an Input step of inputting authentication 
Information of an object of authentication; 
5 a first authentication step of authenticating 

whether an object of authentication has access right 
to a first system using the authentication information 
of the object of authentication that has been input at 
said input step, and allowing the object of 
10 authentication to access the first system if 
authentication succeeds; 

a second authentication step of authenticating 
whether the object of authentication has access right 
to a second system using the authentication 
15 information of the object of authentication that has 

been input at said input step, and allowing the object 
of authentication to access the second system if 
authentication succeeds ; 

a control step of controlling whether the object 
20 of authentication will be managed under management of 
the first system or under management of the second 
system; and 

a verification step of verifying that 
authentication of the object of authentication in the 
25 second system has succeeded at said second 
authentication step; 

wherein if an instruction that shifts the object 
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Of authentication from management under the first 
system to management under the second system has been 
recognized, said control step controls said first 
authentication step and said second authentication 
5 step, in order to shift the object of authentication 
from management under the first system to meunagement 
under the second system, on the condition that the 
authentication of the object of authentication at said 
second authentication step has been verified at said 
10 verification step. 

14. An authentication method according to claim 13, 
characterized in that said control step controls said 
first authentication step in such a manner that the 
object of authentication is excluded from management 

15 at said first authentication step in a case where it 
is verified at said verification step that the object 
of authentication has been authenticated at said 
second authentication step. 

15. An authentication method according to claim 13 or 
20 14, characterized in that said first authentication 

step authenticates user-level access privilege, euxd 
said second authentication step manages administrator - 
level access privilege. 

16. An authentication apparatus characterized by 
2 5 compr 1 s ing : 

input means for inputting authentication 
information of an object of authentication; 
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first authentication means for autlientlcatlng 
whether an object of authentication has access right 
to a first system using the authentication Information 
of the object of authentication that has been Input by 
5 said input means, and allowing the object of 
authentication to access the first system if 
authentication succeeds; 

second authentication means for authenticating 
whether the object of authentication has access right 

10 to a second system using the authentication 

information of the object of authentication that has 
been input by said input mesms, and allowing the 
object of authentication to access the second system 
if authentication succeeds; 

15 control means for controlling whether the object 

of authentication will be managed under management of 
the first system or under meuiagement of the second 
system; and 

verification means for verifying that 

20 authentication of the object of authentication in the 
second system by said second authentication means has 
succeeded; 

wherein if an instruction that shifts the object 
of authentication from management under the first 
25 system to management under the second system has been 
recognized, said control means controls said first 
authentication means and said second authentication 
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means, in order to shift the object of authentication 
from management under the first system to management 
under the second system, on the condition that the 
authentication of the object of authentication by said 
5 second authentication means has been verified by said 
verification means. 

17. An authentication apparatus according to claim 16, 
characterized in that said control means controls said 
first authentication means in such a manner that the 

10 object of authentication is excluded from management 
by said first authentication means in a case where it 
is. verified by said verification means that the object 
of authentication has been authenticated by said 
second authentication means. 

15 18- An authentication apparatus according to claim 16 
or 17, characterized in that said first authentication 
means authenticates user- level access privilege, and 
said second authentication means manages 
administrator- level access privilege. 

20 19. An authentication program characterized by 
comprising: 

code for implementing an input step of inputting 
authentication information of an object of 
authentication ; 
25 code for implementing a first authentication step 

of authenticating whether an object of authentication 
has access right to a first system using the 
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authentication Information of the object of 
authentication that has been input at said Input step, 
and allowing the object of authentication to access 
the first system If authentication succeeds; 
5 code for Implementing a second authentication 

step of authenticating whether the object of 
authentication has access right to a second system 
using the authentication Information of the object of 
authentication that has been Input at said Input step, 

10 and allowing the object of authentication to access 
the second system If authentication succeeds; 

code for Implementing a control step of 
controlling whether the object of authentication will 
be managed under management of the first system or 

15 under management of the second system; and 

code for Implementing a verification step of 
verifying that authentication of the object of 
authentication In the second system has succeeded at 
said second authentication step; 

20 wherein If an Instruction that shifts the object 

of authentication from management under the first 
system to management under the second system has been 
recognized, said control step controls said first 
authentication step and said second authentication 

25 step. In order to shift the object of authentication 
from management under the first system to management 
under the second system, on the condition that the 
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authentication of the object of authentication at said 
second authentication step has been verified at said 
verification step. 
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